Attention A T users. To access the menus on this page please perform the following steps.
1. Please switch auto forms mode to off.
2. Hit enter to expand a main menu option (Health, Benefits, etc).
3. To enter and activate the submenu links, hit the down arrow.
You will now be able to tab or arrow up or down through the submenu options to access/activate the submenu links.

Note, you will be leaving this site, follow the instruction on the Adobe website. After installing Adobe Reader, you will be able to view PDF documents.

About Office of Privacy and Records Management (OPRM)

Who We Are

The Office of Privacy and Records Management (OPRM) integrates privacy considerations into the ways in which the VA uses technologies and handles information. OPRM also oversees activities related to creation, maintenance, and use of records. OPRM achieves this through the following Service Areas: VA Privacy Service, Enterprise Records Service, Freedom of Information Act Service, and Incident Resolution Service.

What We Do

Develops guidance and assists in the identification, implementation, and maintenance of enterprise-wide information privacy policies and procedures in coordination with stakeholders

Establishes policy and oversees VA’s Release of Names process, storage of information, firewall protection and System of Records

Serves on appropriate privacy and governance boards

Oversees, directs, delivers, and ensures delivery of privacy training and orientation to all employees, volunteers, medical and professional staff, contractors, alliances, business associates, and other appropriate third parties, including initial orientation and on-going education and awareness campaigns

Establishes with management and operations, a mechanism to track access to protected information, including health information within the purview of the organizations and as required by law; develops reporting procedures to allow qualified individuals to review access information

Works cooperatively across the VA with the VHA and other applicable organizational units in overseeing patient rights to inspect, amend and restrict access to protected health information and other personal information

Establishes and administers a process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization’s privacy policies and procedures in coordination and collaboration with other similar functions and, when necessary, legal counsel